-
With the introduction of the Application-Centric Infrastructure (ACI), Cisco has turned the setup of a network environment on its head. Instead of a classic network approach with VLANs, the setup is much more application-oriented through the use of policies. In the real world, however, greenfield implementations are rather rare, so you are faced with the challenge of connecting your existing infrastructure to the new application-centric infrastructure using the classic network approach (brownfield). In this course, the different connection variants for L2 and L3 are described and implemented in detail. This includes details of the different routing variants including multicast routing. The integration of an L4-L7 device is also covered. Cisco and the manufacturer of the firewall or load balancer solutions provide different concepts here. In addition to an unmanaged mode, the L4-L7 device or its controller can also be integrated into the environment. As many components often have to be created in the managed object tree for a migration from the previous network, it is very helpful if these processes can be automated to a certain extent. This course therefore also includes an introduction to scripting options with Postman and Python/ARYA. Each participant will create scripts for typical migration steps in this course. This course also provides an overview of the current apps that can be integrated into the APIC.
-
Course Contents
-
- Settings in the bridge domain
- Mapping of VLANs to bridge domain/endpoint group
- External bridged networks
- External Routed Networks
- Settings for OSPF and EIGRP
- Settings for BGP
- Protocol Independent Multicast (PIM)
- L4-L7 integration in Fully Managed Mode
- L4-L7 integration in Service Manager (Hybrid) mode
- Creating a configuration collection for Postman
- Creating Python scripts with ARYA
- Apps for integration into the APIC
The detailed digital documentation package, consisting of an e-book and PDF, is included in the price of the course.
Premium Course Documents
In addition to the digital documentation package, the exclusive Premium Print Package is also available to you.
- High-quality color prints of the ExperTeach documentation
- Exclusive folder in an elegant design
- Document pouch in backpack shape
- Elegant LAMY ballpoint pen
- Practical notepad
The Premium Print Package can be added during the ordering process for € 200,- plus VAT (only for classroom participation).
-
Target Group
-
The course is aimed at administrators from the data center sector who already have a basic understanding of setting up an ACI environment. The focus of the course is on considering a migration to an ACI, but the course also provides interesting, in-depth aspects on the topics of external connection, L4-L7 integration and API programming.
-
Knowledge Prerequisites
-
For a successful course attendance, knowledge of ACI is already mandatory. This can be acquired in the course Implementing a Cisco ACI - Setting up APIC and Fabric.
| 1 | Einstellungen in den ACI-Komponenten |
| 1.1 | Einstellungen in der VRF |
| 1.1.1 | VRF Policy |
| 1.1.2 | EPG Collection für die VRF |
| 1.2 | Einstellungen in der Bridge Domain |
| 1.2.1 | Bridge Domain Policy |
| 1.2.2 | Vorgaben für die Subnetze |
| 1.3 | Parameter in der Endpoint Group |
| 1.3.1 | Einstellungen für virtuelle Domains |
| 1.3.2 | Static Ports und Leafs |
| 1.3.3 | Subnets unter der EPG |
| 1.4 | Mapping des AAEP auf die EPG |
| 1.5 | Routing in ACI |
| 1.5.1 | Einstellungen in der VRF |
| 1.5.2 | Einstellungen im L3 Out |
| 1.5.3 | Nutzen von BFD |
| 1.5.4 | Route Control im L3 Out Subnet |
| 1.5.5 | Route Summarization |
| 1.6 | Multicast-Routing mit PIM |
| 1.6.1 | Einrichten unter der VRF |
| 1.6.2 | Einrichten des PIM L3 Out |
| 1.6.3 | Weitere Policies für Multicasts |
| 2 | Migration in einer Brownfield-Umgebung |
| 2.1 | Ausgangssituation |
| 2.2 | Paralleler Aufbau einer ACI Fabric |
| 2.3 | Kopplung der Umgebungen |
| 2.3.1 | Loop Protection |
| 2.3.2 | Mapping von VLANs in ACI |
| 2.3.3 | Erweiterung der virtuellen Umgebung |
| 2.3.4 | VMM-Integration |
| 2.3.5 | Verwendung von Blade Servern |
| 2.3.6 | Nutzung des AVE |
| 2.4 | Migration von Bare-Metal-Systemen |
| 2.5 | L3-Kopplung zwischen ACI und Brownfield |
| 2.6 | Migration des Gateway |
| 2.6.1 | Eine Frage der Verträge |
| 2.6.2 | Berücksichtigung des Routings |
| 2.6.3 | Konfiguration des Gateways |
| 2.7 | Migration des Service Layers |
| 3 | Integration von L4-L7-Devices |
| 3.1 | L4-L7-Integration |
| 3.2 | Verschiedene Integration Modes |
| 3.3 | Nutzen des Unmanaged Mode |
| 3.3.1 | Concrete und Logical Device |
| 3.3.2 | Service Graphs Templates |
| 3.3.3 | Erzeugen eines Service Graph |
| 3.3.4 | Überprüfen der L4-L7-Konfiguration |
| 3.4 | Deployment Modes für Firewalls |
| 3.4.1 | Routed Mode mit L2 ACI |
| 3.4.2 | Routed Mode mit L3 ACI |
| 3.4.3 | Routed Mode mit PBR |
| 3.4.4 | Transparent Mode |
| 3.5 | Deployment Modes for ADCs |
| 3.5.1 | Two-Arm Mode |
| 3.5.2 | One-Arm Mode |
| 3.6 | APIC-Integration bei Checkpoint |
| 4 | Nutzung der REST API |
| 4.1 | REST Prinzip |
| 4.1.1 | REST API |
| 4.1.2 | XML und JSON |
| 4.1.3 | Class und Managed Object |
| 4.1.4 | Object Naming |
| 4.2 | Arbeiten mit Postman |
| 4.2.1 | Anlegen eines Environment |
| 4.2.2 | Anlegen einer eigenen Collection |
| 4.2.3 | Login am APIC |
| 4.3 | Abfragen an den APIC |
| 4.3.1 | Scope-Filter in der REST-Anfrage |
| 4.3.2 | Aufnahme von Child-Objects in die Response |
| 4.3.3 | Sortieren der Ausgabe |
| 4.3.4 | Hinzufügen von Tag oder Alias |
| 4.3.5 | Subscription am MO |
| 4.4 | Konfiguration über die API |
| 4.4.1 | Anlegen eines neuen MOs |
| 4.4.2 | Anpassungen an den Properties |
| 4.4.3 | Löschen von MOs |
| 4.5 | Weitere Optionen im Postman |
| 4.5.1 | Nutzen des Runners |
| 4.5.2 | Postman Console |
| 4.5.3 | Arbeiten mit Variablen |
| 4.5.4 | Prüfen von Rückmeldungen |
| 4.5.5 | Nutzen von Schleifen |
| 5 | Erstellen von Skripten mit Python |
| 5.1 | Arbeiten mit Python |
| 5.2 | REST Requests in Python |
| 5.2.1 | Aufbau eines GET-Requests |
| 5.2.2 | Aufbau eines POST-Requests |
| 5.3 | Nutzen des Cobra SDKs |
| 5.3.1 | Login am APIC |
| 5.3.2 | Class und DN Requests |
| 5.3.3 | Anwendungsbeispiele für Queries |
| 5.3.4 | Config Requests |
| 5.4 | Verwenden von ARYA |
| 5.4.1 | Aufruf von ARYA |
| 5.4.2 | Anpassungen im erstellten Skript |
| 5.4.3 | WebARYA |
| 6 | Apps in der APIC GUI |
| 6.1 | Einbinden von Apps |
| 6.2 | Das Base Package |
| 6.2.1 | Contract Viewer |
| 6.2.2 | VisuDash |
| 6.2.3 | APIC Postman |
| 6.3 | Weitere Apps von Cisco |
| 6.3.1 | NAE Policy Explorer |
| 6.3.2 | Enhanced Endpoint Tracker |
| 6.3.3 | State Change Checker |
| 6.3.4 | Krowten |
| 6.3.5 | fTriage |
| 6.3.6 | cTrac |
| 6.3.7 | Fault Analytics |
| 6.4 | Apps anderer Hersteller |
| 6.5 | Kopplungen zu anderen Produkten |
-
Classroom training
- Do you prefer the classic training method? A course in one of our Training Centers, with a competent trainer and the direct exchange between all course participants? Then you should book one of our classroom training dates!
-
Hybrid training
- Hybrid training means that online participants can additionally attend a classroom course. The dynamics of a real seminar are maintained, and the online participants are able to benefit from that. Online participants of a hybrid course use a collaboration platform, such as WebEx Training Center or Saba Meeting. To do this, a PC with browser and Internet access is required, as well as a headset and ideally a Web cam. In the seminar room, we use specially developed and customized audio- and video-technologies. This makes sure that the communication between all persons involved works in a convenient and fault-free way.
-
Online training
- You wish to attend a course in online mode? We offer you online course dates for this course topic. To attend these seminars, you need to have a PC with Internet access (minimum data rate 1Mbps), a headset when working via VoIP and optionally a camera. For further information and technical recommendations, please refer to.
-
Tailor-made courses
-
You need a special course for your team? In addition to our standard offer, we will also support you in creating your customized courses, which precisely meet your individual demands. We will be glad to consult you and create an individual offer for you.
You can find the complete description of this course with dates and prices ready for download at as PDF.-
With the introduction of the Application-Centric Infrastructure (ACI), Cisco has turned the setup of a network environment on its head. Instead of a classic network approach with VLANs, the setup is much more application-oriented through the use of policies. In the real world, however, greenfield implementations are rather rare, so you are faced with the challenge of connecting your existing infrastructure to the new application-centric infrastructure using the classic network approach (brownfield). In this course, the different connection variants for L2 and L3 are described and implemented in detail. This includes details of the different routing variants including multicast routing. The integration of an L4-L7 device is also covered. Cisco and the manufacturer of the firewall or load balancer solutions provide different concepts here. In addition to an unmanaged mode, the L4-L7 device or its controller can also be integrated into the environment. As many components often have to be created in the managed object tree for a migration from the previous network, it is very helpful if these processes can be automated to a certain extent. This course therefore also includes an introduction to scripting options with Postman and Python/ARYA. Each participant will create scripts for typical migration steps in this course. This course also provides an overview of the current apps that can be integrated into the APIC.
-
Course Contents
-
- Settings in the bridge domain
- Mapping of VLANs to bridge domain/endpoint group
- External bridged networks
- External Routed Networks
- Settings for OSPF and EIGRP
- Settings for BGP
- Protocol Independent Multicast (PIM)
- L4-L7 integration in Fully Managed Mode
- L4-L7 integration in Service Manager (Hybrid) mode
- Creating a configuration collection for Postman
- Creating Python scripts with ARYA
- Apps for integration into the APIC
The detailed digital documentation package, consisting of an e-book and PDF, is included in the price of the course.
Premium Course Documents
In addition to the digital documentation package, the exclusive Premium Print Package is also available to you.
- High-quality color prints of the ExperTeach documentation
- Exclusive folder in an elegant design
- Document pouch in backpack shape
- Elegant LAMY ballpoint pen
- Practical notepad
The Premium Print Package can be added during the ordering process for € 200,- plus VAT (only for classroom participation).
-
Target Group
-
The course is aimed at administrators from the data center sector who already have a basic understanding of setting up an ACI environment. The focus of the course is on considering a migration to an ACI, but the course also provides interesting, in-depth aspects on the topics of external connection, L4-L7 integration and API programming.
-
Knowledge Prerequisites
-
For a successful course attendance, knowledge of ACI is already mandatory. This can be acquired in the course Implementing a Cisco ACI - Setting up APIC and Fabric.
| 1 | Einstellungen in den ACI-Komponenten |
| 1.1 | Einstellungen in der VRF |
| 1.1.1 | VRF Policy |
| 1.1.2 | EPG Collection für die VRF |
| 1.2 | Einstellungen in der Bridge Domain |
| 1.2.1 | Bridge Domain Policy |
| 1.2.2 | Vorgaben für die Subnetze |
| 1.3 | Parameter in der Endpoint Group |
| 1.3.1 | Einstellungen für virtuelle Domains |
| 1.3.2 | Static Ports und Leafs |
| 1.3.3 | Subnets unter der EPG |
| 1.4 | Mapping des AAEP auf die EPG |
| 1.5 | Routing in ACI |
| 1.5.1 | Einstellungen in der VRF |
| 1.5.2 | Einstellungen im L3 Out |
| 1.5.3 | Nutzen von BFD |
| 1.5.4 | Route Control im L3 Out Subnet |
| 1.5.5 | Route Summarization |
| 1.6 | Multicast-Routing mit PIM |
| 1.6.1 | Einrichten unter der VRF |
| 1.6.2 | Einrichten des PIM L3 Out |
| 1.6.3 | Weitere Policies für Multicasts |
| 2 | Migration in einer Brownfield-Umgebung |
| 2.1 | Ausgangssituation |
| 2.2 | Paralleler Aufbau einer ACI Fabric |
| 2.3 | Kopplung der Umgebungen |
| 2.3.1 | Loop Protection |
| 2.3.2 | Mapping von VLANs in ACI |
| 2.3.3 | Erweiterung der virtuellen Umgebung |
| 2.3.4 | VMM-Integration |
| 2.3.5 | Verwendung von Blade Servern |
| 2.3.6 | Nutzung des AVE |
| 2.4 | Migration von Bare-Metal-Systemen |
| 2.5 | L3-Kopplung zwischen ACI und Brownfield |
| 2.6 | Migration des Gateway |
| 2.6.1 | Eine Frage der Verträge |
| 2.6.2 | Berücksichtigung des Routings |
| 2.6.3 | Konfiguration des Gateways |
| 2.7 | Migration des Service Layers |
| 3 | Integration von L4-L7-Devices |
| 3.1 | L4-L7-Integration |
| 3.2 | Verschiedene Integration Modes |
| 3.3 | Nutzen des Unmanaged Mode |
| 3.3.1 | Concrete und Logical Device |
| 3.3.2 | Service Graphs Templates |
| 3.3.3 | Erzeugen eines Service Graph |
| 3.3.4 | Überprüfen der L4-L7-Konfiguration |
| 3.4 | Deployment Modes für Firewalls |
| 3.4.1 | Routed Mode mit L2 ACI |
| 3.4.2 | Routed Mode mit L3 ACI |
| 3.4.3 | Routed Mode mit PBR |
| 3.4.4 | Transparent Mode |
| 3.5 | Deployment Modes for ADCs |
| 3.5.1 | Two-Arm Mode |
| 3.5.2 | One-Arm Mode |
| 3.6 | APIC-Integration bei Checkpoint |
| 4 | Nutzung der REST API |
| 4.1 | REST Prinzip |
| 4.1.1 | REST API |
| 4.1.2 | XML und JSON |
| 4.1.3 | Class und Managed Object |
| 4.1.4 | Object Naming |
| 4.2 | Arbeiten mit Postman |
| 4.2.1 | Anlegen eines Environment |
| 4.2.2 | Anlegen einer eigenen Collection |
| 4.2.3 | Login am APIC |
| 4.3 | Abfragen an den APIC |
| 4.3.1 | Scope-Filter in der REST-Anfrage |
| 4.3.2 | Aufnahme von Child-Objects in die Response |
| 4.3.3 | Sortieren der Ausgabe |
| 4.3.4 | Hinzufügen von Tag oder Alias |
| 4.3.5 | Subscription am MO |
| 4.4 | Konfiguration über die API |
| 4.4.1 | Anlegen eines neuen MOs |
| 4.4.2 | Anpassungen an den Properties |
| 4.4.3 | Löschen von MOs |
| 4.5 | Weitere Optionen im Postman |
| 4.5.1 | Nutzen des Runners |
| 4.5.2 | Postman Console |
| 4.5.3 | Arbeiten mit Variablen |
| 4.5.4 | Prüfen von Rückmeldungen |
| 4.5.5 | Nutzen von Schleifen |
| 5 | Erstellen von Skripten mit Python |
| 5.1 | Arbeiten mit Python |
| 5.2 | REST Requests in Python |
| 5.2.1 | Aufbau eines GET-Requests |
| 5.2.2 | Aufbau eines POST-Requests |
| 5.3 | Nutzen des Cobra SDKs |
| 5.3.1 | Login am APIC |
| 5.3.2 | Class und DN Requests |
| 5.3.3 | Anwendungsbeispiele für Queries |
| 5.3.4 | Config Requests |
| 5.4 | Verwenden von ARYA |
| 5.4.1 | Aufruf von ARYA |
| 5.4.2 | Anpassungen im erstellten Skript |
| 5.4.3 | WebARYA |
| 6 | Apps in der APIC GUI |
| 6.1 | Einbinden von Apps |
| 6.2 | Das Base Package |
| 6.2.1 | Contract Viewer |
| 6.2.2 | VisuDash |
| 6.2.3 | APIC Postman |
| 6.3 | Weitere Apps von Cisco |
| 6.3.1 | NAE Policy Explorer |
| 6.3.2 | Enhanced Endpoint Tracker |
| 6.3.3 | State Change Checker |
| 6.3.4 | Krowten |
| 6.3.5 | fTriage |
| 6.3.6 | cTrac |
| 6.3.7 | Fault Analytics |
| 6.4 | Apps anderer Hersteller |
| 6.5 | Kopplungen zu anderen Produkten |
-
Classroom training
- Do you prefer the classic training method? A course in one of our Training Centers, with a competent trainer and the direct exchange between all course participants? Then you should book one of our classroom training dates!
-
Hybrid training
- Hybrid training means that online participants can additionally attend a classroom course. The dynamics of a real seminar are maintained, and the online participants are able to benefit from that. Online participants of a hybrid course use a collaboration platform, such as WebEx Training Center or Saba Meeting. To do this, a PC with browser and Internet access is required, as well as a headset and ideally a Web cam. In the seminar room, we use specially developed and customized audio- and video-technologies. This makes sure that the communication between all persons involved works in a convenient and fault-free way.
-
Online training
- You wish to attend a course in online mode? We offer you online course dates for this course topic. To attend these seminars, you need to have a PC with Internet access (minimum data rate 1Mbps), a headset when working via VoIP and optionally a camera. For further information and technical recommendations, please refer to.
-
Tailor-made courses
-
You need a special course for your team? In addition to our standard offer, we will also support you in creating your customized courses, which precisely meet your individual demands. We will be glad to consult you and create an individual offer for you.
You can find the complete description of this course with dates and prices ready for download at as PDF.
Hybrid Training
Trainer language German